I am thinking about writing some of NASL files to include more vulnerabilities on my systems, is there a guideline or template I can use for this?
I have checked one of the default NASL files, but I am confused about the following
-
What is script name: “script_name” is this referring to something else? " script_name(“Apache HTTP Server ‘mod_cluster’ DoS Vulnerability - Linux”);" for example will this search for something that is stored in the DB maybe or other areas?
-
How to define the detection method?